projects / profile / common / kernel-common.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 194d983) | patch
netfilter: ipset: fix netiface set name overflow
authorFlorian Westphal <fw@strlen.de>
Thu, 22 Nov 2012 01:32:45 +0000 (01:32 +0000)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 24 Nov 2012 22:48:23 +0000 (23:48 +0100)
commit4a6dd664eba59488c9e56b51a594396d7706eb08
treef92561b8e68af4f243882f69d03056d73db7734etree | snapshot
parent194d9831f0419b5125dc94ec0ece4434d8ef74f0commit | diff
netfilter: ipset: fix netiface set name overflow

attribute is copied to IFNAMSIZ-size stack variable,
but IFNAMSIZ is smaller than IPSET_MAXNAMELEN.

Fortunately nfnetlink needs CAP_NET_ADMIN.

Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | history
Domain: SCM / Uncategorized;